Home page logo

bugtraq logo Bugtraq mailing list archives

Re: smbd remote file creation vulnerability
From: Jarno Huuskonen <Jarno.Huuskonen () uku fi>
Date: Tue, 26 Jun 2001 09:53:29 +0300

On Mon, Jun 25, Pavol Luptak wrote:
Linux kernels with openwall patch (with restricted links in /tmp) are
imunne to this type of attack (following symlinks does not work, link
owner does not match with file's owner).

The symlink restrictions work only in /tmp (mode 1777) directories, so
making the symlink in your own homedir still works (should work).


Jarno Huuskonen <Jarno.Huuskonen () removeme uku fi>

  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]